Linux 软件免费装

在这里免费安装WordPress以及其他软件

Banner图

Responsive Iframe Watchdog

开发者 lgrapplications
更新时间 2017年12月7日 11:42
捐献地址: 去捐款
PHP版本: 4.5.0 及以上
WordPress版本: 4.9.1
版权: GPLv2 or later
版权网址: 版权信息

标签

html video embed security responsive YouTube Vimeo iframe hack Dailymotion hacking trust Brightcove trusted watchdog

下载

1.2 1.2.1

详情介绍:

Many WordPress administrators disable the ability to insert unfiltered_html for Editors and Authors roles to avoid being hacked via iframe or other html elements that have an src attribute associated with them. This plugin:

安装:

This section describes how to install the plugin and get it working.
  1. Upload the plugin files to the '/wp-content/plugins/lgr_responsive_iframe_watchdog' directory, or install the plugin through the WordPress plugins screen directly. Currently this plugin is only available through wordpress.org plugin directory.
  2. Activate the plugin through the 'Plugins' screen in WordPress. Look for 'Responsive Iframe Watchdog' and click the 'activate' link.
  3. Use the Tools->Responsive Iframe Watchdog screen to configure the plugin.
  4. Decide if you want your embeds to support the unsecured http protocol by checking the box. It is recommended to leave this unchecked and any existing http calls will be reported in the 'List of Violations'. If you decide to allow http the click 'Save Changes' before continuing.
  5. Upon installation the plugin's 'Trusted Domain Names' list will be empty and all pages and posts will temporarily be blocked from public view. Evaluate the 'List of Violations' and click the 'Add to Trusted List' button for each domain name you wish to trust, any duplicate domain names will be automatically removed from the list.
  6. Important: only 'Published' pages/posts are shown in the 'List of Violations'. Pages and Posts marked as 'Private', 'Draft' or 'Trash' will not appear in the list. When updating any pre-existing pages/posts visibility to 'Published' always preview the page/post to be sure that it is not blocked to the public due to an untrusted domain name.
  7. In the event that you see an http protocol violation a link to edit the post/page is provided. In most cases you will just simply change any http:// to https://.
  8. Click the 'Save Changes' button when you are finished trusting domain names and the 'List of Violations' should be empty, if not you need to decide if you want to delete any pages or posts that remain. The goal is to have no remaining Violations in the list.
  9. One final note: Any pre-existing HTML elements (i.e. <iframe>, <embed>, <video><source>) will still function as it did before providing the domain name is trusted. If you at some point you need to edit these pages/posts you should use this plugin's embed dialog form to re-embed using shortcode instead of the original HTML element. Convert any existing <iframe>, <embed> or <video><source> elements to [lgrriw_div][lgrriw_iframe] shortcode via the dialog form. Failure to convert iframe tags to shorcode after editing an existing post/page containing an iframe could result in a blockage to public view after updating any changes to the page/post.

屏幕截图:

  • This screen shot shows the Administrator's Settings page. The page is showing a couple of error messages that you will see when you first install the plugin (see item 5 under Installation).
  • This screen shot shows the icon as it appears in the editor.
  • This screen shot shows initial dialog.
  • This screen shot shows the YouTube Settings.
  • This screen shot shows the YouTube after url/id has been pasted.
  • This screen shot shows the YouTube after shortcode has been inserted.
  • This screen shot shows the YouTube preview imbed.
  • This screen shot shows the Vimeo Settings.
  • This screen shot shows the Livestream Settings.
  • This screen shot shows the Brightcove Settings.
  • This screen shot shows the Dailymotion Settings.
  • This screen shot shows the Custom Settings for Other Video Embed.
  • This screen shot shows the Custom Settings for HTML Embed.

升级注意事项:

  • Overwrite all files from your previous installation.

更新日志:

1.2.1 1.2 1.1 1.0